A recent case centred on unencrypted sensitive personal data being taken home by an employee on a laptop which was subsequently stolen from the employee’s home. The Information Commissioner’s Office (ICO) fined the Nursing Home in Northern Ireland £15,000 for failing to keep the personal information they hold secure.
To help protect your organisation, ensure you have policies regarding the use of encryption, homeworking and the storage of mobile devices containing company data either regarding your employees or details of others. Consider induction and further training for your employees so that you can evidence effective processes and procedures exist for your organisation which are implemented and monitored.
Consider that a larger organisation would have attracted a far greater fine if found in a similar serious breach situation.